Opticibot.A

It has rootkit functionalities in order to make its detection more difficult and monitors the websites accessed by the user in order to obtain confidential information, such as passwords and usernames. It does not spread automatically by its own means.

Affected platforms:

Windows 2003/XP/2000/NT/ME/98/95

First detected on:

May 30, 2007

Detection updated on:

Nov. 5, 2007

Statistics

No

Proactive protection:

Yes, using TruPrevent Technologies

Brief Description

Opticibot.A is a Trojan that monitors the websites accessed by the user. This way, it could obtain confidential data, such as usernames and passwords, among others.

Additionally, it has rootkit functionalities, which allow it to hide the files and the registry entries belonging to Opticibot.A, in order to make its detection more difficult.

Opticibot.A does not spread automatically using its own means. It needs an attacking user's intervention in order to reach the affected computer. The means of transmission used include, among others, floppy disks, CD-ROMs, email messages with attached files, Internet downloads, FTP, IRC channels, peer-to-peer (P2P) file sharing networks, etc.

Visible Symptoms

Opticibot.A is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.